[libvirt] RFC: virtio-rng and /dev/urandom
Hubert Kario
hkario at redhat.com
Mon Apr 18 11:07:40 UTC 2016
On Monday 18 April 2016 02:46:19 H. Peter Anvin wrote:
> Another thing that really needs to be addressed, but is a separate
> issue: invalidating and reseeding the entropy pool after a snapshot
> event.
definitely agreed
though just reseeding would be sufficient - the goal is to make the
output unpredictable and unique between multiple machines starting from
the same snapshot, feeding enough random data to make the entropy pool
unique again is sufficient to achieve that
--
Regards,
Hubert Kario
Senior Quality Engineer, QE BaseOS Security team
Web: www.cz.redhat.com
Red Hat Czech s.r.o., Purkyňova 99/71, 612 45, Brno, Czech Republic
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 819 bytes
Desc: This is a digitally signed message part.
URL: <http://listman.redhat.com/archives/libvir-list/attachments/20160418/1fc6cbd9/attachment-0001.sig>
More information about the libvir-list
mailing list